Information Disclosure Vulnerability in SilverStripe 2.3.x before 2.3.6

Information Disclosure Vulnerability in SilverStripe 2.3.x before 2.3.6

CVE-2010-5188 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

SilverStripe 2.3.x before 2.3.6 allows remote attackers to obtain sensitive information via the (1) debug_memory parameter to core/control/Director.php or (2) debug_profile parameter to main.php.

Learn more about our Web Application Penetration Testing UK.